dde708483b684be767eab7d5ba457ff97d5b94c17667e1b8113168482805c93b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dde708483b684be767eab7d5ba457ff97d5b94c17667e1b8113168482805c93b
Size

818KB
MD5

5d33f52f0d28ee0b663dfef4db05f520
SHA1

31186c2146a132e1213022a92025ce7f7cfe63ee
SHA256

dde708483b684be767eab7d5ba457ff97d5b94c17667e1b8113168482805c93b
SHA512

06ba7ee1c3e7211d151dd73a1b4dc7c1bcad194087c2a74d296ff94fadbc1095357e6ce3d1f8f38e4da9124d261b2152a4b03288e1bc820c7e51ded196399c62
SSDEEP

12288:IgL9tSGIcxeNCAtsZ9sBrQFBVMP288lHzhc8mjPQpi9kY+ZEutQcaQpPOJ1:1tAKSCQsZKJPR8lHFc8mjIpivMrtQwW

Score

N/A

Malware Config

Signatures

Files

dde708483b684be767eab7d5ba457ff97d5b94c17667e1b8113168482805c93b
.exe windows x86

f06a17909202b57912deae3144571465

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleA
lstrcpynA
lstrcpynA
GetSystemTime
GetPrivateProfileIntA
SetThreadPriority
lstrcpynA
FindFirstVolumeA
GetCurrentThreadId
VirtualFree
GetVolumeInformationA
GetDriveTypeA
GetFileType
Heap32First
GetCurrentDirectoryA
lstrcpynA
lstrcpynA
GetDiskFreeSpaceW
WriteFile
GetModuleHandleA
lstrcpynA
lstrcpynA
lstrcpynA
lstrcpynA
lstrcatA
lstrcmpW
OpenMutexW
VirtualProtect
lstrcpynA

comuid

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ